getcharcount+java,利用C#实现SSLSocket加密通讯的方法详解

最新推荐文章于 2021-07-28 10:54:26 发布
最新推荐文章于 2021-07-28 10:54:26 发布
阅读量198 收藏 1
点赞数
文章标签: getcharcount+java

前言

SSL Socket通讯是对socket的扩展,增加Socket通讯的数据安全性,SSL认证分为单向和双向认证。单向认证只认证服务器端的合法性而不认证客户端的合法性。双向认证是同时认证服务端和客户端。下面我分别说说使用C#实现单向认证和双向认证的过程,并用代码实现。

一、 单向认证

第1步:准备一个数字证书,可以使用如下脚本生成

先进入到vs2005的命令行状态,即:

开始–>程序–>Microsoft Visual Studio 2005–>Visual Studio Tools–>Visual Studio 2005 命令提示

键入: makecert -r -pe -n “CN=TestServer” -ss Root -sky exchange

说明:上面的指令将在创建一个受信任的根证书,

第2步创建服务器端程序,代码如下:

using System;

using System.ServiceModel;

using System.Net;

using System.Net.Sockets;

using System.Net.Security;

using System.Text;

using System.Security.Authentication;

using System.Security.Cryptography.X509Certificates;

using System.IdentityModel.Tokens;

using System.IdentityModel.Selectors;

namespace ConsoleApp

{

public class Program

{

static X509Certificate serverCertificate = null;

public static void RunServer()

{

TcpListener listener = new TcpListener(IPAddress.Parse("192.168.1.25"), 901);

listener.Start();

while (true)

{

try

{

Console.WriteLine("Waiting for a client to connect...");

TcpClient client = listener.AcceptTcpClient();

ProcessClient(client);

}

catch

{

}

}

}

static void ProcessClient(TcpClient client)

{

SslStream sslStream = new SslStream(client.GetStream(), false);

try

{

sslStream.AuthenticateAsServer(serverCertificate, false, SslProtocols.Tls, true);

DisplaySecurityLevel(sslStream);

DisplaySecurityServices(sslStream);

DisplayCertificateInformation(sslStream);

DisplayStreamProperties(sslStream);

sslStream.ReadTimeout = 5000;

sslStream.WriteTimeout = 5000;

byte[] message = Encoding.UTF8.GetBytes("Hello from the server.");

Console.WriteLine("Sending hello message.");

sslStream.Write(message);

Console.WriteLine("Waiting for client message...");

while (true)

{

string messageData = ReadMessage(sslStream);

Console.WriteLine("Received: {0}", messageData);

if (messageData.ToUpper() == "EXIT")

break;

}

}

catch (AuthenticationException e)

{

Console.WriteLine("Exception: {0}", e.Message);

if (e.InnerException != null)

{

Console.WriteLine("Inner exception: {0}", e.InnerException.Message);

}

Console.WriteLine("Authentication failed - closing the connection.");

sslStream.Close();

client.Close();

return;

}

finally

{

sslStream.Close();

client.Close();

}

}

static string ReadMessage(SslStream sslStream)

{

byte[] buffer = new byte[2048];

StringBuilder messageData = new StringBuilder();

int bytes = -1;

do

{

bytes = sslStream.Read(buffer, 0, buffer.Length);

Decoder decoder = Encoding.UTF8.GetDecoder();

char[] chars = new char[decoder.GetCharCount(buffer, 0, bytes)];

decoder.GetChars(buffer, 0, bytes, chars, 0);

messageData.Append(chars);

if (messageData.ToString().IndexOf("") != -1)

{

break;

}

}

while (bytes != 0);

return messageData.ToString();

}

static void DisplaySecurityLevel(SslStream stream)

{

Console.WriteLine("Cipher: {0} strength {1}", stream.CipherAlgorithm, stream.CipherStrength);

Console.WriteLine("Hash: {0} strength {1}", stream.HashAlgorithm, stream.HashStrength);

Console.WriteLine("Key exchange: {0} strength {1}", stream.KeyExchangeAlgorithm, stream.KeyExchangeStrength);

Console.WriteLine("Protocol: {0}", stream.SslProtocol);

}

static void DisplaySecurityServices(SslStream stream)

{

Console.WriteLine("Is authenticated: {0} as server? {1}", stream.IsAuthenticated, stream.IsServer);

Console.WriteLine("IsSigned: {0}", stream.IsSigned);

Console.WriteLine("Is Encrypted: {0}", stream.IsEncrypted);

}

static void DisplayStreamProperties(SslStream stream)

{

Console.WriteLine("Can read: {0}, write {1}", stream.CanRead, stream.CanWrite);

Console.WriteLine("Can timeout: {0}", stream.CanTimeout);

}

static void DisplayCertificateInformation(SslStream stream)

{

Console.WriteLine("Certificate revocation list checked: {0}", stream.CheckCertRevocationStatus);

X509Certificate localCertificate = stream.LocalCertificate;

if (stream.LocalCertificate != null)

{

Console.WriteLine("Local cert was issued to {0} and is valid from {1} until {2}.",

localCertificate.Subject,

localCertificate.GetEffectiveDateString(),

localCertificate.GetExpirationDateString());

}

else

{

Console.WriteLine("Local certificate is null.");

}

X509Certificate remoteCertificate = stream.RemoteCertificate;

if (stream.RemoteCertificate != null)

{

Console.WriteLine("Remote cert was issued to {0} and is valid from {1} until {2}.",

remoteCertificate.Subject,

remoteCertificate.GetEffectiveDateString(),

remoteCertificate.GetExpirationDateString());

}

else

{

Console.WriteLine("Remote certificate is null.");

}

}

private static void DisplayUsage()

{

Console.WriteLine("To start the server specify:");

Console.WriteLine("serverSync certificateFile.cer");

}

public static void Main(string[] args)

{

try

{

X509Store store = new X509Store(StoreName.Root);

store.Open(OpenFlags.ReadWrite);

// 检索证书

X509Certificate2Collection certs = store.Certificates.Find(X509FindType.FindBySubjectName, "TestServer", false); // vaildOnly = true时搜索无结果。

if (certs.Count == 0) return;

serverCertificate = certs[0];

RunServer();

store.Close(); // 关闭存储区。

}

catch (Exception ex)

{

Console.WriteLine(ex.Message);

}

Console.ReadLine();

}

}

}

第3步,创建客户端代码

namespace ConsoleAppClient

{

using System;

using System.Collections;

using System.Net.Security;

using System.Net.Sockets;

using System.Security.Authentication;

using System.Text;

using System.Security.Cryptography.X509Certificates;

namespace Examples.System.Net

{

public class SslTcpClient

{

private static Hashtable certificateErrors = new Hashtable();

// The following method is invoked by the RemoteCertificateValidationDelegate.

public static bool ValidateServerCertificate(

object sender,

X509Certificate certificate,

X509Chain chain,

SslPolicyErrors sslPolicyErrors)

{

if (sslPolicyErrors == SslPolicyErrors.None)

return true;

Console.WriteLine("Certificate error: {0}", sslPolicyErrors);

// Do not allow this client to communicate with unauthenticated servers.

return false;

}

public static void RunClient(string machineName)

{

// Create a TCP/IP client socket.

// machineName is the host running the server application.

TcpClient client = new TcpClient(machineName, 901);

Console.WriteLine("Client connected.");

// Create an SSL stream that will close the client's stream.

SslStream sslStream = new SslStream(client.GetStream(), false, new RemoteCertificateValidationCallback(ValidateServerCertificate), null);

try

{

sslStream.AuthenticateAsClient("TestServer");

}

catch (AuthenticationException e)

{

Console.WriteLine("Exception: {0}", e.Message);

if (e.InnerException != null)

{

Console.WriteLine("Inner exception: {0}", e.InnerException.Message);

}

Console.WriteLine("Authentication failed - closing the connection.");

client.Close();

return;

}

// Encode a test message into a byte array.

// Signal the end of the message using the "".

byte[] messsage = Encoding.UTF8.GetBytes("Hello from the client.");

// Send hello message to the server.

sslStream.Write(messsage);

sslStream.Flush();

// Read message from the server.

string serverMessage = ReadMessage(sslStream);

Console.WriteLine("Server says: {0}", serverMessage);

messsage = Encoding.UTF8.GetBytes("exit");

sslStream.Write(messsage);

sslStream.Flush();

// Close the client connection.

client.Close();

Console.WriteLine("Client closed.");

}

static string ReadMessage(SslStream sslStream)

{

// Read the message sent by the server.

// The end of the message is signaled using the

// "" marker.

byte[] buffer = new byte[2048];

StringBuilder messageData = new StringBuilder();

int bytes = -1;

do

{

bytes = sslStream.Read(buffer, 0, buffer.Length);

// Use Decoder class to convert from bytes to UTF8

// in case a character spans two buffers.

Decoder decoder = Encoding.UTF8.GetDecoder();

char[] chars = new char[decoder.GetCharCount(buffer, 0, bytes)];

decoder.GetChars(buffer, 0, bytes, chars, 0);

messageData.Append(chars);

// Check for EOF.

if (messageData.ToString().IndexOf("") != -1)

{

break;

}

} while (bytes != 0);

return messageData.ToString();

}

private static void DisplayUsage()

{

Console.WriteLine("To start the client specify:");

Console.WriteLine("clientSync machineName [serverName]");

Environment.Exit(1);

}

public static void Main(string[] args)

{

string machineName = null;

machineName = "192.168.1.25";

try

{

RunClient(machineName);

}

catch (Exception ex)

{

Console.WriteLine(ex.Message);

}

Console.ReadLine();

}

}

}

}

运行效果如下图:

96f104cc735397c2fd19d1b8d5c6bdb8.png

导致通讯失败可能问题如下:

1)证书没有导入到受信任的根证书列表中;2)证书失效;3)客户端在使用AuthenticateAsClient注册时没有正确使用服务器端证书名称。

二、 双向认证

第1步:创建所需证书,服务器端所需证书同单向认证中的创建过程

先进入到vs2005的命令行状态,即:

开始–>程序–>Microsoft Visual Studio 2005–>Visual Studio Tools–>Visual Studio 2005 命令提示

键入:

makecert -r -pe -n “CN=TestClient” -ss Root -sky exchange

第2步:创建服务端程序

服务端的程序同单向认证的服务器端代码

第3步:创建客户端程序

namespace ConsoleAppClient

{

using System;

using System.Collections;

using System.Net.Security;

using System.Net.Sockets;

using System.Security.Authentication;

using System.Text;

using System.Security.Cryptography.X509Certificates;

namespace Examples.System.Net

{

public class SslTcpClient

{

private static Hashtable certificateErrors = new Hashtable();

// The following method is invoked by the RemoteCertificateValidationDelegate.

public static bool ValidateServerCertificate(

object sender,

X509Certificate certificate,

X509Chain chain,

SslPolicyErrors sslPolicyErrors)

{

if (sslPolicyErrors == SslPolicyErrors.None)

return true;

Console.WriteLine("Certificate error: {0}", sslPolicyErrors);

// Do not allow this client to communicate with unauthenticated servers.

return false;

}

public static void RunClient(string machineName)

{

// Create a TCP/IP client socket.

// machineName is the host running the server application.

TcpClient client = new TcpClient(machineName, 901);

Console.WriteLine("Client connected.");

// Create an SSL stream that will close the client's stream.

SslStream sslStream = new SslStream(client.GetStream(), false, new RemoteCertificateValidationCallback(ValidateServerCertificate), null);

// The server name must match the name on the server certificate.

X509Store store = new X509Store(StoreName.Root);

store.Open(OpenFlags.ReadWrite);

检索证书

X509Certificate2Collection certs = store.Certificates.Find(X509FindType.FindBySubjectName, "TestClient", false);

try

{

sslStream.AuthenticateAsClient("TestServer", certs, SslProtocols.Tls, false);

}

catch (AuthenticationException e)

{

Console.WriteLine("Exception: {0}", e.Message);

if (e.InnerException != null)

{

Console.WriteLine("Inner exception: {0}", e.InnerException.Message);

}

Console.WriteLine("Authentication failed - closing the connection.");

client.Close();

return;

}

// Encode a test message into a byte array.

// Signal the end of the message using the "".

byte[] messsage = Encoding.UTF8.GetBytes("Hello from the client.");

// Send hello message to the server.

sslStream.Write(messsage);

sslStream.Flush();

// Read message from the server.

string serverMessage = ReadMessage(sslStream);

Console.WriteLine("Server says: {0}", serverMessage);

messsage = Encoding.UTF8.GetBytes("exit");

sslStream.Write(messsage);

sslStream.Flush();

// Close the client connection.

client.Close();

Console.WriteLine("Client closed.");

}

static string ReadMessage(SslStream sslStream)

{

// Read the message sent by the server.

// The end of the message is signaled using the

// "" marker.

byte[] buffer = new byte[2048];

StringBuilder messageData = new StringBuilder();

int bytes = -1;

do

{

bytes = sslStream.Read(buffer, 0, buffer.Length);

// Use Decoder class to convert from bytes to UTF8

// in case a character spans two buffers.

Decoder decoder = Encoding.UTF8.GetDecoder();

char[] chars = new char[decoder.GetCharCount(buffer, 0, bytes)];

decoder.GetChars(buffer, 0, bytes, chars, 0);

messageData.Append(chars);

// Check for EOF.

if (messageData.ToString().IndexOf("") != -1)

{

break;

}

} while (bytes != 0);

return messageData.ToString();

}

private static void DisplayUsage()

{

Console.WriteLine("To start the client specify:");

Console.WriteLine("clientSync machineName [serverName]");

Environment.Exit(1);

}

public static void Main(string[] args)

{

string machineName = null;

machineName = "192.168.1.25";

try

{

RunClient(machineName);

}

catch (Exception ex)

{

Console.WriteLine(ex.Message);

}

Console.ReadLine();

}

}

}

}

总结

到此这篇关于利用C#实现SSLSocket加密通讯的文章就介绍到这了,更多相关C#实现SSLSocket加密通讯内容请搜索脚本之家以前的文章或继续浏览下面的相关文章希望大家以后多多支持脚本之家!

bfecoder
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
C#实现SSLSocket加密通讯(附完整源码)
希望我的博客,能帮上你解决学习中工作中所遇到的问题
03-31 114
C#实现SSLSocket加密通讯(附完整源码)
java实验-字符串.docx
12-13
Java编程中,字符串是经常使用的数据类型,用于表示文本信息。本实验主要涉及三个方面的内容:字符串的基本操作,字符串的比较以及不同字符串类(String和StringBuffer)的使用和性能分析。 首先,我们来看第一个...
C# Socket ssl
weixin_33717117的博客
05-04 130
一、x.509证书 1.制作证书 先进入到vs2005的命令行状态,即:开始-->程序-->Microsoft Visual Studio 2005-->Visual Studio Tools-->Visual Studio 2005 命令提示 键入: makecert -r -pe -n "CN=MyServer" -ss My -sky exchange ...
C# Socket SSL通讯笔记
weixin_34129145的博客
12-23 188
一、x.509证书   1.制作证书 先进入到vs2005的命令行状态,即:开始-->程序-->Microsoft Visual Studio 2005-->Visual Studio Tools-->Visual Studio 2005 命令提示 键入: makecert -r -pe -n "CN=MyServer" -ss My -sky exchange ...
getcharcount+java_Encoding.GetCharCount Method (System.Text) | Microsoft Docs
weixin_31504783的博客
03-06 155
When overridden in a derived class, calculates the number of characters produced by decoding a sequence of bytes from the specified byte array.public:abstract int GetCharCount(cli::array ^ bytes, int...
gb2312,utf-8,utf-8-bom等编码格式的互相转换
11-04
以上代码片段展示了如何在C#实现不同编码格式之间的转换,包括GB2312与UTF-8,以及处理带有BOM的UTF-8文件。了解并熟练掌握这些方法,对处理多语言文本数据至关重要。在实际开发中,我们还需要根据具体需求,结合...
正则表达式,替换所有HTML标签的简单实例
11-28
C#中,可以使用 `Encoding.GetString()` 方法和字符索引来实现这一点。 一个改进后的 `formatString` 函数可能如下所示: ```csharp public static string FormatString(string str, int size) { // 假设字符串...
文本编辑 数据结构 C语言
12-14
总结来说,DOCEDIT是一个简单的文本编辑器实例,它利用C语言的数据结构(如二维数组)和基本函数实现文本操作,展示了数据结构在实际编程中的应用。通过学习和理解DOCEDIT的实现,开发者可以进一步掌握C语言的数据...
Delphi根据区位码转换成汉字..rar
04-19
Result := Char(TEncoding.UTF8.GetCharCount(UTF8Bytes) > 1); end; ``` 3. **处理高位字节和低位字节**:在区位码中,高位字节和低位字节分别对应于Unicode的高12位和低12位。因此,可以使用位运算将它们组合...
利用C#实现SSLSocket加密通讯方法详解
12-17
前言 SSL Socket通讯是对socket的扩展,增加Socket通讯的数据安全性,SSL认证分为单向和双向认证。单向认证只认证服务器端的合法性而不认证客户端的合法性。双向认证是同时认证服务端和客户端。下面我分别说说使用C#实现单向认证和双向认证的过程,并用代码实现。 一、 单向认证 第1步:准备一个数字证书,可以使用如下脚本生成 先进入到vs2005的命令行状态,即: 开始–>程序–>Microsoft Visual Studio 2005–>Visual Studio Tools–>Visual Studio 2005 命令提示 键入: makecert -r -pe -n “CN=T
JAVA NIO MINA2调用大宝CA密码安全套件实现国密SSL安全通道,1.0.1版本,含通信示例代码
02-26
使用方法见:https://blog.csdn.net/upset_ming/article/details/96491058 1. 修改了前一版本中证书验证的bug,支持JDK8的高版本 2. 支持国密SSL双向认证 3. 将过期的国密证书替换为新证书
C# SSL服务端连接及安装数字证书
09-02
C# SSL服务端连接及安装数字证书
c#如何调用SSl(https)加密java写的Web Services例子
07-21
net去调用java端写的https webservices 1)浏览器导入服务器cer证书 2)c#客户端引入证书
C#】Socket中的ssl通信
09-03 405
引言 有个项目中用到了Socket ssl通信,在此记录一下. 证书 Socketssl需要用到证书用来校验身份,而作为调试,我们只需用测试证书即可. 有个工具可以很方便地制作测试证书,下载地址为http://supersocket.codeplex.com/releases/view/59311 首先, 输入Common Name,密码和保存路径后,我...
使用C#实现SSLSocket加密通讯
weixin_40397257的博客
07-28 2059
SSL Socket通讯是对socket的扩展,增加Socket通讯的数据安全性,SSL认证分为单向和双向认证。单向认证只认证服务器端的合法性而不认证客户端的合法性。双向认证是同时认证服务端和客户端。下面我分别说说使用C#实现单向认证和双向认证的过程,并用代码实现。 一、 单向认证...
JAVA NIO MINA2调用大宝CA版本JSSE实现国密SSL安全通道服务的方法
upset_ming的博客
07-30 962
系统要求 1. Windows系统、Linux系统、Mac系统 2. JDK7及以上 3. JDK使用无限制的安全策略文件 TcpGmSslServer.java代码 /** *@author https://www.doubleca.com */ package com.doubleca.security.gmssl.sample.mina2; import java.io.I...
java获取指定字符串中,大写字母、小写字母、数字的个数
最新发布
05-05
具体实现代码如下: ```java public static Map, Integer> getCharCount(String str) { Map, Integer> map = new HashMap(); int upperCount = 0; int lowerCount = 0; int digitCount = 0; for (int i = 0; i...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值